Forum Discussion

Nimbostratus

May 19, 2016

How to prevent unauthenticated logins when user presses back button ?

We are working on one of the requirement..details below. Work Flow Users logs in to the secure website (abc.com) via PC/ Tablet/ Ipad. Once logged successfully, user browses the secure site...

Cumulonimbus

May 24, 2016

Hi,

Another solution is to check HTTP referer header. if it is not abc.com, reply to the same URI with cookie deletion.

when HTTP_REQUEST {
    if {!([HTTP::header Referer] starts_with "https://abc.com/") && [HTTP::cookie exists "Mycookie"]} {
        HTTP::respond 302 noserver Set-Cookie "Mycookie=deleted;secure;expires=Thu, 01 Jan 1970 00:00:00 GMT" Location [HTTP::uri]
    }
}

Recent Discussions

Hi All, We have viprion 4300 with 4450 blades with 6 blades all blades having same configuration
May 01, 2024 kumar741
BWC iRule
May 01, 2024 dazor
Can iRule be used to perform exception of IPI category based on Geolocation
May 01, 2024 Nishal_Rai
help irules for compatibilty
May 01, 2024 dbamini
Wildcard SSL Certificate Deployment on F5 LTM
May 01, 2024 Ishaq

Forum Discussion

How to prevent unauthenticated logins when user presses back button ?

Recent Discussions

Hi All, We have viprion 4300 with 4450 blades with 6 blades all blades having same configuration

BWC iRule

Can iRule be used to perform exception of IPI category based on Geolocation

help irules for compatibilty

Wildcard SSL Certificate Deployment on F5 LTM

Related Content

Guarding Large Language Models: Advanced Approaches to Preventing Model Theft

Operationlizing Online Fraud Detection, Prevention, and Response

BIG-IP Configuration utility unauthenticated remote code execution vulnerability CVE-2023-46747

unauthenticated or authenticated FTP proxy

API Security Strategy - Discover and map APIs, block unwanted connection and prevent data leakage